Computer maker Acer has been hit by a ransomware attack "where the threat actors are demanding the largest known ransom to date, $50,000,000," writes Bleeping Computer: Yesterday, the ransomware gang announced on their data leak site that they had breached Acer and shared some images of allegedly stolen files as proof... In response to BleepingComputer's inquiries, Acer did not provide a clear answer regarding whether they suffered a REvil ransomware attack, saying instead that they "reported recent abnormal situations" to relevant law enforcement and data protection authorities... In requests for further details, Acer said "there is an ongoing investigation and for the sake of security, we are unable to comment on details." PC Magazine reports that data from Advanced Intel's Andariel cyberintelligence platform "was able to link the possible breach to the Microsoft Exchange issue."

Read more of this story at Slashdot.

There's a long thread on Twitter today where people from Microsoft are reminiscing about the days when they put Netscape down, and then got in trouble with the DoJ. I remember those times differently, and very well. Microsoft was in no danger. They could have let Netscape grow, it never would have hurt them. For all of Netscape's bluster about device drivers and such, they had a really bad codebase, and a chaotic team that while blessed with a product that the web was growing around, Microsoft could played a senior role, and helped the rest of us add all kinds of editors and databases to the web, and at least try to bring across some of the GUI innovations of the 80s. Instead all that was lost. Today, decades later, because of the chaos Microsoft brought us then, the editors on the web still SUCK. They are really inferior. Far less useful than the editors we had before the web. What if instead Microsoft had chilled and brought together the best minds from the PC era and asked some basic questions like how are we going to make the web better for everyone. What a time that would have been to do just that. But they acted like spoiled children. Andreessen et al could be excused, they really were basically children then. Gates had a dream of world domination forever, or at least until he was tired of it. So selfish, narcissistic, and so wrong. And the gloating and self-importance today, they still don't, even in retirement, understand that they held all of us back, that's why they failed to continue to dominate. Holding back progress is not ultimately a good strategy for world domination, esp at the leading edge of technology.

BTW, I think Microsoft knew very well that Netscape was falling apart all on its own, but they used the device drivers crap to convince reporters that they were terrified of Netscape. Maybe they even sort of psyched themselves up for it, probably because they were bored. Who knows, but what could have been, and how much time we wasted, for their vanity.

Today's song: Roam.

The eruption was the first in the area for about 800 years and followed thousands of earthquakes.

Long-time Slashdot reader theshowmecanuck writes: A grandmother let her 13 year old grandson use her credit card to buy added content for one of his games for which she thought would be a $15 charge. After the account opened up because of the credit card on it, he started downloading other things not realizing they were adding substantial charges to her credit card. She asked Sony to refund the charges, it's not like they can't disable the added content if they wanted, but they told her basically too bad so sad. From the article: When CTV News Toronto reached on to PlayStation on Liscoumb's behalf a spokesperson said "We reviewed this case at your request and determined that it did not qualify for a refund as outlined in our terms of service and user agreement." "I'm just heartbroken and Visa said they can't do anything, because I'm the one that put the credit card into the system," [the grandmother, Diana] Liscoumb said... Liscoumb said it will be difficult to pay back the $1,400 in charges and says her grandson is upset too. "He even offered to get a job when he turns 14 to help pay for it." This story drew a range of reactions from Slashdot readers: "This was a $1400 lesson that hopefully they both learned. Never trust a corporation to do the right thing." "This is not on the vendor it is on the grandson, his parents and his grandmother... This should not be a news story at all. This should be a private learning lesson for the child, and his guardians." "The real problem is still that companies are putting addictive gambling mechanics into games." "Someone at Sony should fix the problem."

Read more of this story at Slashdot.

"New vaccine trials hold great promise in the management of an East African strain of African swine fever, one of the most devastating diseases to afflict pigs," writes Cornell's Alliance for Science (a group who gives its mission as correcting misinformation and countering conspiracy theories slowing progress on issues including synthetic biology and agricultural innovations). Slashdot reader wooloohoo shares their report: Scientists at the International Livestock Research Institute (ILRI) are employing CRISPR Cas9 editing and synthetic biology to modify the ASFV genome in order to attenuate the virus for a live vaccine to help reduce deaths from African swine fever. Up to 10 vaccine candidates have been lined up for tests, in a project that commenced in 2016... African swine fever is present in 26 African countries, Steinaa observed, as well as in parts of Asia and Europe. An effective vaccine could be a breakthrough for pig farmers across the globe... With a 100 percent fatality rate and a highly contagious nature, African swine fever poses a potent threat to the global pig farming industry. The rapid spread of the disease portends social and economic disruptions wherever it strikes.

Read more of this story at Slashdot.

In 2019 Purism launched a suite of privacy-protecting, no-tracking apps and services named Librem One. And it included an encrypted, no-logging, virtual private network tunnel named Librem Tunnel. Unfortunately, "Recently we've been forced to remove Librem Tunnel from iOS due to their unfair policies," explains a post this week on Purism's blog: Apple's policy is that applications that make in-app purchases or offer subscriptions using Apple's payment platform pay Apple 30% of their revenue. The justification behind that fee is that companies are benefiting from all of the work Apple has put into its payments platform and so the fee helps them maintain that payments infrastructure while saving app developers from having to implement their own payment or subscription infrastructure... Recently our VPN endpoints have changed, which required us to update the Librem Tunnel application. Unfortunately our attempts to push an update were blocked, because Apple saw that the application was a VPN, which flagged it to check whether it was a subscription service (which VPNs frequently are). Even though Librem Tunnel is just part of the overall Librem One offering, because it's part of a subscription service, Apple is requiring us to add the ability to sign up and pay for Librem One subscriptions within the Librem Tunnel app before they will allow updated versions into the App Store. Why are they making that requirement even though we already have our own independent payment infrastructure? Because once that app allows in-app purchases, Apple can then automatically take their 30% cut. We do not accept these kinds of monopolistic practices, nor do we want to fund them through our own customers. Since Apple does not allow alternatives to the App Store on their platform, we have no choice but to remove Librem Tunnel from iOS, until such time Apple changes their policies either on their own, or through government intervention. For their existing users on iOS, "Because Librem Tunnel uses the standard, open, OpenVPN protocol, we have been working with customers to apply their OpenVPN configuration to a different iOS OpenVPN client."

Read more of this story at Slashdot.

"A pallet of batteries was released from the International Space Station last week, becoming the heaviest single piece of junk ever jettisoned from the station," reports UPI: Mission controllers in Houston commanded the Canadarm2 robotic arm to release an external pallet loaded with the 2.9 tons of nickel-hydrogen batteries into Earth's orbit Thursday morning. "It is safely moving away from the station and will orbit Earth between two to four years before burning up harmlessly in the atmosphere," NASA said in a statement. Gizmodo shares a photo of the pallet orbiting 265 miles (427 km) above Chile. And they add that this chain of events starte in 2011 when NASA decided to switch the Space Station from nickel-hydrogen batteries to lithium-ion batteries. This effort required four supply missions from the Japanese H-II Transfer Vehicle (HTV) cargo spacecraft, 13 different astronauts, and 14 spacewalks, in which 48 nickel-hydrogen batteries were replaced by 24 lithium-ion batteries... "It used to be that it wasn't a big deal to toss stuff from ISS because very few satellites were below it [at altitudes below 250 miles (400 km)], " Jonathan McDowell, an astrophysicist at the Harvard-Smithsonian Center for Astrophysics, explained in an email. "That's not so true any more with a bunch of cubesats and with recently launched Starlinks during orbit raising. So I have concerns." To which he added: "I don't immediately see what else they could have done except fly a whole extra HTV mission just to get rid of it." According to the European Space Agency, around 34,000 objects larger than 3.9 inches (10 cm) are currently in orbit around Earth, in addition to millions of tinier objects, such as tools and bits of spacecraft. The volume of objects in space, both functional and non-functional, is steadily increasing, prompting concerns of potential collisions and even more orbital debris. A NASA representative told Gizmodo their ballistics officers "indicate no threat" of the pallet smashing into other space objects, but added "this item, like all, will be tracked by U.S. Space Command."

Read more of this story at Slashdot.

In his This Week in Programming column, Mike Melanson writes: Rustaceans' dreams of Rust's inclusion in the Linux kernel are one tiny, ever so slight step closer to becoming a reality, with this week's "intentionally bare-bones" inclusion in Linux-next, the development branch of the Linux kernel... Curb your enthusiasm, however, as this remains a rather tentative first step of many necessary steps before Rust fully lands in the Linux kernel. A rather brief post on LWN.net summarizes where we are rather succinctly: Followers of the linux-next integration tree may have noticed a significant addition: initial support for writing device drivers in the Rust language. There is some documentation in Documentation/rust, while the code itself is in the rust top-level directory. Appearance in linux-next generally implies readiness for the upcoming merge window, but it is not clear if that is the case here; this code has not seen a lot of wider review yet. It is, regardless, an important step toward the ability to write drivers in a safer language. Indeed, Miguel Ojeda, a software developer and maintainer of the Rust for Linux project writes that the proposed inclusion "does not mean we will make it into mainline, of course, but it is a nice step to make things as smooth as possible," with some changes expected before any decision as to Rust's inclusion are made. For those of you less familiar with Rust, part of the appeal here comes with Rust's memory safety features, especially in comparison to C, which the Linux kernel is currently coded in. Part of the problem, however, is that Rust is compiled based on LLVM, as opposed to GCC, and subsequently supports fewer architectures. This is a problem we've seen play out recently, as the Python cryptography library has replaced some old C code with Rust, leading to a situation where certain architectures will not be supported. Presently, the proposal to include Rust in the Linux kernel limits this issue by saying that Rust would be used, at least initially, for writing drivers that, as noted in another LWN.net article on the topic, "would never be used on the more obscure architectures anyway."

Read more of this story at Slashdot.

A Russian man has pleaded guilty in the U.S. to offering a Tesla employee $1 million to cripple the electric car company's massive electric battery plant in Nevada with ransomware and steal company secrets for extortion, prosecutors and court records said. The Associated Press reports: In a case that cybersecurity experts called exceptional for the risks he took, Egor Igorevich Kriuchkov pleaded guilty Thursday in U.S. District Court in Reno. Prosecutors alleged that Kriuchkov acted on behalf of co-conspirators abroad and attempted to use face-to-face bribery to recruit an insider to physically plant ransomware, which scrambles data on targeted networks and can only be unlocked with a software key provided by the attackers. Typically, ransomware gangs operating from safe havens hack into victim networks over the internet and download data before activating the ransomware. "The fact that such a risk was taken could, perhaps, suggest that this was an intelligence operation aimed at obtaining information rather than an extortion operation aimed at obtaining money," said Brett Callow, a cybersecurity analyst at anti-virus software company Emsisoft. "It's also possible that the criminals thought the gamble was worth it and decided to roll the dice," Callow said. The FBI said the plot was stopped before any damage happened. Although Kriuchkov says the Russian government was aware of his case, prosecutors and the FBI have not alleged ties to the Kremlin. "His guilty plea to conspiracy to intentionally cause damage to a protected computer could have gotten him up to five years in prison and a $250,000 fine," the report says. "But he's expected to face no more than 10 months under terms of his written plea agreement."

Read more of this story at Slashdot.

From a report: On Saturday, Zack Snyder himself will head to Twitch to unveil the first look at Justice League: Justice Is Gray... the grayscale version that will soon arrive on HBO Max. The "pre-show" for the event kicks off at 2:30 p.m. Pacific Time on the MANvsGAME channel, with the Snyder and and Justice League star Joe Manganiello joining the broadcast for the big reveal at 4:00 p.m. Pacific. StreamElements designed audience tools to use during the stream, including an engaging donation functionality that will benefit the American Foundation for Suicide Prevention. The Chicago Tribune argues all you needed to know about Joss Whedon's original 2017 version is encapsulated in the 68-second YouTube video "Sad Affleck." (An SFGate columnist calls the new version "vastly better.") But the Tribune calls Snyder's four-hour director's cut "a 14-year-old's idea of gravitas. Epic, violent, full of naughty words, told with the lyricism of a pharmaceutical ad about bloating. And more importantly, for now, it's complete." Yahoo Entertainment's Insider has compiled "The 45 biggest differences between 'Zack Snyder's Justice League' and the 2017 theatrical version." But Variety just specifically asked Zack Snyder, "Why is Justice League so violent?" [T]he violence in "Justice League" is bloodier and more violent than audiences are typically accustomed to with superhero movies, which are almost always rated PG-13 — and therefore largely bloodless. Snyder wanted to push the envelope. "It's a pure exercise in creative freedom," the director told Variety this week... Snyder says knowing his film would be streaming on HBO Max freed him from having to make his "Justice League" work for a PG-13 rating. "Let's just do it the exact way we would if there was no ratings board," he said of his team's thinking. "Let's not use any second guessing. Let's just do it the way we think is the coolest. That was the philosophical approach." Part of the reason that "Justice League" is so violent is to realistically demonstrate what it would be like to actually face off against god-like superheroes. ComicBook.com reports that Snyder is now also planning "a multi-day SnyderVerse movie marathon later in 2021, where showings of Man of Steel and Batman v Superman: Dawn of Justice will culminate in a theatrical IMAX screening of Zack Snyder's Justice League. The filmmaker is a "huge admirer" of the Justice Is Gray Edition in IMAX, calling it the "ultimate version" of Justice League that is "sort of the penultimate ridiculous movie that shouldn't exist at its highest most fetishistic level." Snyder tells Esquire his four-hour re-edit was "a labor of love and I would do it again in a second. I wouldn't hesitate. And look, we were doing it for free. I really didn't care. I just wanted to get it, fix it." Esquire adds that "Even if you decide not to dive into a four hour super hero movie, at least take away a lesson from the making of the Snyder Cut: in a time when so much of us have experienced wrongs and tragedy, sometimes wrongs can be righted, and sometimes your biggest visions find a way to get out into the world."

Read more of this story at Slashdot.

I've been talking about Frontier a lot lately, the usual stuff, outliner, object database, verb set, threading, integration, etc. But I realized I leave out the most important thing about Frontier. Whenever we saw a protocol we could support, we did. And we even created new ones when there was a void, as with XML-RPC, OPML and RSS. The best part is we extended the language to make inter-app communication use exactly the same language syntax as local procedure calls. Factoring was also a very big part of the process. So it is kind of a central station, and always getting more high level through factoring. Our software is all about communication, and making it as effortless as possible. It still is, very much.

BTW, in yesterday's demo, I didn't mean that it was literally for Roam devs, that's just how I got started on this thread. I'm beginning to understand that Roam is a world unto itself, and that other products such as Obsidion and others are outgoing. Obviously it's the latter group that we'll be able to integrate with.

An anonymous reader quotes a report from Newshub: Victoria University of Wellington has accidentally deleted all files stored on its desktop computers affecting a "significant" number of staff members -- as well as some students. A spokesperson for the University confirmed to Newshub on Thursday that an unexpected issue wiped all files saved on the desktops. "The University's Digital Solutions team continues to work with all affected staff and students to recover access to files and in many cases the issues have been resolved," they said. "There are however, some affected staff and students who have not been able to recover access to files." The aim of the data wipe was to clear inactive users' data by getting rid of profiles of students who no longer studied, reports student magazine Critic. Critic spoke to one Masters student who had heard of PHD students losing an entire year's worth of data. The university spokesperson said they apologized for the inconvenience caused and is investigating the issue to ensure it doesn't happen again.

Read more of this story at Slashdot.